PT-2025-16208 · Unknown · Scriptandtools Ecommerce-Website-In-Php
Maloyroyorko
·
Published
2025-04-14
·
Updated
2025-07-17
·
CVE-2025-3555
CVSS v3.1
8.1
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ScriptAndTools eCommerce-website-in-PHP version 3.0
Description
A problematic issue has been identified in the software. The issue involves improper restriction of excessive authentication attempts, potentially allowing remote attacks. The complexity of exploiting this issue is considered high, and exploitability is difficult. The exploit has been publicly disclosed, and the vendor was notified but did not respond. The vulnerability affects an unknown function within the
/login.php file.Recommendations
ScriptAndTools eCommerce-website-in-PHP version 3.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Improper Restriction of Excessive Authentication Attempts
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Scriptandtools Ecommerce-Website-In-Php